Public bug reported: PISA functionality requires certificates to be included by the responder during BEX and during UPDATEs respectively. If a packet contains a certificate parameter, it needs to be checked (by hipfw) both at middleboxes and the addressed end-host. This is due to the fact that a middlebox can also be the end-point of a hip connection. ** Affects: hipl Importance: Medium Assignee: Andrius Bentkus (toxedvirus) Status: Confirmed -- broken certificate inclusion and verification in BEX and UPDATE https://bugs.launchpad.net/bugs/677041 You received this bug notification because you are a member of HIPL core team, which is subscribed to HIPL. Status in Host Identity Protocol for Linux: Confirmed Bug description: PISA functionality requires certificates to be included by the responder during BEX and during UPDATEs respectively. If a packet contains a certificate parameter, it needs to be checked (by hipfw) both at middleboxes and the addressed end-host. This is due to the fact that a middlebox can also be the end-point of a hip connection.